PT-2016-6378 · Linux+1 · Linux Kernel+1
Published
2015-06-03
·
Updated
2020-08-04
·
CVE-2016-5344
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions 3.x
Description
The issue is related to multiple integer overflows in the MDSS driver, which can be exploited by attackers to cause a denial of service or possibly have other unspecified impacts. This is achieved by providing a large size value, and it is related to the files mdss compat utils.c, mdss fb.c, and mdss rotator.c.
Recommendations
For Linux kernel version 3.x, update to a version that includes the fix for the integer overflows in the MDSS driver.
Fix
DoS
Integer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Linux Kernel